cve/CVE-2023-20110.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 18:27:17 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

1.2 KiB

Raw Permalink Blame History

CVE-2023-20110

Description

A vulnerability in the web-based management interface of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability exists because the web-based management interface inadequately validates user input. An attacker could exploit this vulnerability by authenticating to the application as a low-privileged user and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to read sensitive data on the underlying database.

POC

Reference

No PoCs from references.

Github

https://github.com/CVEDB/awesome-cve-repo
https://github.com/abrahim7112/Vulnerability-checking-program-for-Android
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/redfr0g/CVE-2023-20110

1.2 KiB Raw Permalink Blame History

CVE-2023-20110

Description

POC

Reference

Github

1.2 KiB

Raw Permalink Blame History